Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/mlVOIMwt4c8SM7aoJ3X8QHUsjFM.roa
File: mlVOIMwt4c8SM7aoJ3X8QHUsjFM.roa (raw, json)
Hash identifier: XxJrSxKHzxEEFQs1sYOkos9gXOY1qjLsxvZcDSRdXq0=
Subject key identifier: 9A:55:4E:20:CC:2D:E1:CF:12:33:B6:A8:27:75:FC:40:75:2C:8C:53
Certificate issuer: /CN=9b8151ae164a5b782b103de7f7c8a8948932aebf
Certificate serial: 018CC348EDE886513FC41A7CBB298D34EC5A
Authority key identifier: 9B:81:51:AE:16:4A:5B:78:2B:10:3D:E7:F7:C8:A8:94:89:32:AE:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m4FRrhZKW3grED3n98iolIkyrr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/mlVOIMwt4c8SM7aoJ3X8QHUsjFM.roa
Signing time: Mon 01 Jan 2024 04:29:45 +0000
ROA not before: Mon 01 Jan 2024 04:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57707
IP address blocks: 2a03:a900:ffff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/m4FRrhZKW3grED3n98iolIkyrr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/m4FRrhZKW3grED3n98iolIkyrr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/m4FRrhZKW3grED3n98iolIkyrr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ed:e8:86:51:3f:c4:1a:7c:bb:29:8d:34:ec:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b8151ae164a5b782b103de7f7c8a8948932aebf
Validity
Not Before: Jan 1 04:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a554e20cc2de1cf1233b6a82775fc40752c8c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0e:9f:f9:0f:31:21:f4:07:42:44:ee:ef:87:
7e:12:d6:5b:5f:09:94:3f:e5:52:e4:49:42:3d:00:
80:3c:c3:b5:84:14:df:ec:4e:94:b2:f1:03:25:72:
27:3f:06:9c:d1:94:81:65:dd:cf:84:85:d5:cf:6c:
5e:eb:20:37:4e:f4:fa:a9:14:54:1f:03:53:37:ac:
0d:82:b2:ea:48:48:57:9a:b5:ec:e3:10:40:2d:8b:
b7:cc:73:78:31:fb:90:ce:78:c4:e6:bc:9a:30:cd:
1f:67:f0:f7:9b:8e:a1:9a:cc:3a:3f:f1:1f:20:4c:
4d:50:00:34:8b:64:1b:20:a9:b7:41:6e:c1:68:0c:
53:f1:e5:a6:a5:cd:f7:2d:18:d1:28:90:8c:30:1c:
2f:08:0a:7e:9a:95:98:65:97:40:85:f4:7f:f0:ee:
5e:1d:1b:58:ea:4d:b1:e2:4c:74:3a:3b:62:01:bd:
76:a3:09:fb:54:e1:eb:a3:70:15:71:ff:72:ea:f7:
c7:42:0b:ea:e1:c3:bb:2a:0b:63:b1:b1:6e:a6:4e:
a6:70:72:42:4e:3e:a4:3d:52:eb:39:fd:2b:22:1c:
83:34:71:9b:ac:cf:2d:d5:d9:21:ce:40:f5:e3:f7:
b6:ab:69:bb:37:66:6e:66:11:02:39:f5:0f:16:c1:
be:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:55:4E:20:CC:2D:E1:CF:12:33:B6:A8:27:75:FC:40:75:2C:8C:53
X509v3 Authority Key Identifier:
keyid:9B:81:51:AE:16:4A:5B:78:2B:10:3D:E7:F7:C8:A8:94:89:32:AE:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m4FRrhZKW3grED3n98iolIkyrr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/mlVOIMwt4c8SM7aoJ3X8QHUsjFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6b6d1f-5421-48b9-b7eb-da1fe9ebee8e/1/m4FRrhZKW3grED3n98iolIkyrr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:a900:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
2d:42:f0:61:4b:f3:88:82:21:16:b7:64:f6:62:d3:07:1e:d4:
9a:2f:dd:8a:e6:e0:f7:12:f5:15:6b:8b:9c:39:6a:3d:8b:b2:
13:b1:36:fd:8c:06:68:5f:a6:39:c7:4f:15:57:b5:84:f4:48:
00:9e:1d:d1:42:65:15:f5:d1:2c:d9:bb:0d:07:38:23:e1:26:
21:2c:37:86:f9:66:28:59:b1:6b:0a:14:41:e3:fe:b4:47:e6:
c1:3b:ce:99:6b:57:47:88:2e:0d:b1:a2:ba:7f:8e:8b:7b:0b:
79:d7:7c:00:4d:da:00:76:68:75:2f:9e:d9:04:19:9f:ff:f1:
ff:c2:b8:26:88:c5:42:02:7a:a3:6f:47:e3:0c:81:c0:b5:2c:
1b:41:ce:1a:4c:fc:8c:af:5f:f0:6a:5d:31:0a:77:7c:63:9f:
48:92:d3:53:c8:dd:a9:ef:5a:d1:5a:5e:bd:f3:2a:99:85:d2:
a1:8e:3a:51:95:40:7b:30:75:b5:d7:e8:78:91:98:5c:22:c9:
d4:d6:3b:5b:71:85:8a:0b:67:27:96:18:f6:86:fa:db:74:67:
69:d0:3e:75:fa:eb:db:e2:b7:43:a0:18:85:44:46:2a:3d:b0:
12:a7:e0:d6:10:cc:1c:69:45:0f:44:70:68:19:dd:2d:e2:3b:
0c:28:84:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 13:54:12 2024 by rpki-client on console-fra.rpki-client.org